Where communities thrive

  • Join over 1.5M+ people
  • Join over 100K+ communities
  • Free without limits
  • Create your own community
    Mario Behling


    The only recent change is to force http -> https redirects

    Ok, changed that. Let's see if it works in a bit.

    Oh no. Changing that results in "corrupted content"
    Screenshot from 2019-09-09 16-06-01.png
    If I change that in chrome it directs to https://users/sign_in . Strange.
    Mario Behling
    @munen Do you know who has the rights to the connected Facebook app?
    Mario Behling


    chrome has changed audio loading. can no longer be done without user interaction. only works in Firefox now....

    What do do? voicerepublic/voicerepublic_dev#868


    Maybe that's cloudflare again caching the login form ?

    If this was related to Cloudflare switching of the Cloudflare proxy should have solved it. I tried it, but problem is still there. Switched Cloudflare on again.

    Norbert Preining
    The backend server at localhost:9292 seems not to be running, thus nginx which relates request to /faye to it returns an error. User registration and login are broken.
    I don't know which server should be running at 9292
    Norbert Preining
    /home/backend/app/current/config/private_pub.yml on server, shoud be started
    And, today at 14:43
    Sep  9 14:43:41 voicerepublic kernel: [5267394.948879] Out of memory: Kill process 17677 (convert) score 598 or sacrifice child
    OOM killer, memory running out. It seems
    fail2ban-server was also killed by OOM killer, so maybe there is some blocking gone bad?
    Norbert Preining
    (no, fail2ban is back running)
    Alain M. Lafon
    Congrats on the first 100 stargazers!
    Mario Behling


    (no, fail2ban is back running)

    Good, but login still not working at https://voicerepublic.com/users/sign_in

    Norbert Preining
    Also registration. As I wrote, the backend at port 9292 is not running. nginx tries to forward requests there, though
    Not sure where/how this should be started (well, where I know, but how? - those ruby rails).
    Mario Behling
    @norbusan There is some documentation here, but also there could be outdated info in there: https://github.com/voicerepublic/voicerepublic_dev/wiki
    Norbert Preining
    There are two times that a ruby process has been killed due to OOM, the last is Sep 7 14:35:09
    Maybe that was one of the process?
    But sorry, now it is already after 2am and I have to work tomorrow ...
    Good night
    Mario Behling
    @norbusan Good night
    Thank you
    François Cartegnie
    @norbusan 9292 is fixed that's the talkback/chat client
    Unsure how it is supposed to be started. That's not fired up with /etc/init.d/rails-*
    Unsure if I did fix it properly. Maybe I souhld have set up bogus certs for nginx use only
    As usual, takes hour to understand how it is wired :/
    Mario Behling
    @fcartegnie Actually we should take out the tawk.to client anyways. Cause, we don't have resources to answer questions coming in through this channel and we currently have not set up this communication properly.
    Norbert Preining
    Thanks @fcartegnie for the fix
    I will go through the servies and try to find out how they are started. I want to replicate this on one of my servers on a modern Debian, and maybe dockerize the stuff, which would help reduce complexity and managability.
    (not to speak of the idea moving it into a Kubernetes instance)
    Norbert Preining
    @fcartegnie @mariobehling User registration is still broken, as @fcartegnie saiid, the 9292 server is the chat client, not of interest. I checked the production.log and this here seems the error:
    I, [2019-09-09T17:25:26.018642 #14795]  INFO -- : Started POST "/users" for at 2019-09-09 17:25:26 +0200
    I, [2019-09-09T17:25:26.022329 #14795]  INFO -- : Processing by Users::RegistrationsController#create as HTML
    I, [2019-09-09T17:25:26.022509 #14795]  INFO -- :   Parameters: {"utf8"=>"✓", "authenticity_token"=>"Qs3JMEesyG17FgdIgRr
    In0GQA1cVW5C2a6J6wRlPAeJEYI34UOLzF1YvppP3DnKMHu0pWImVgaGIxmx0drA/VQ==", "user"=>{"referrer"=>"", "firstname"=>"Norbert",
     "lastname"=>"Preining", "email"=>"norbert@preining.info", "password"=>"[FILTERED]", "password_confirmation"=>"[FILTERED
    ]", "timezone"=>"Tokyo", "accept_terms_of_use"=>"1"}, "commit"=>"Continue »"}
    I, [2019-09-09T17:25:26.146012 #14795]  INFO -- : EMIT: {:x=>"lifecycle_user", :event=>:create, :attributes=>{"id"=>1626
    159, "firstname"=>"Norbert", "lastname"=>"Preining", "created_at"=>Mon, 09 Sep 2019 17:25:26 CEST +02:00, "updated_at"=>
    Mon, 09 Sep 2019 17:25:26 CEST +02:00, "email"=>"norbert@preining.info", "encrypted_password"=>"$2a$10$PItglVTHUy9clF4e3
    ztyM.0QIMWxiELnQMfM8NSWMxAUw/lmf74kS", "reset_password_token"=>nil, "reset_password_sent_at"=>nil, "remember_created_at"
    =>nil, "sign_in_count"=>0, "current_sign_in_at"=>nil, "last_sign_in_at"=>nil, "current_sign_in_ip"=>nil, "last_sign_in_i
    p"=>nil, "provider"=>nil, "uid"=>nil, "slug"=>"norbert-preining", "last_request_at"=>nil, "image_file_name"=>nil, "image
    _content_type"=>nil, "image_file_size"=>nil, "image_updated_at"=>nil, "header_uid"=>nil, "avatar_uid"=>nil, "about"=>"",
     "timezone"=>"Tokyo", "website"=>nil, "authentication_token"=>"zjjpu6NNJtsMUSgEhh7N", "default_series_id"=>nil, "summary
    "=>nil, "penalty"=>1.0, "confirmation_token"=>"ab1dc321e571ae61df66c8814d99a7aed40b2f9751ab7c9695c1c24ecba1e24f", "confi
    rmed_at"=>nil, "confirmation_sent_at"=>Mon, 09 Sep 2019 17:25:26 CEST +02:00, "unconfirmed_email"=>nil, "credits"=>0, "p
    urchases_count"=>0, "referrer"=>"", "about_as_html"=>"", "paying"=>false, "is_hidden"=>false, "featured_from"=>nil, "fea
    tured_until"=>nil, "image_alt"=>"Norbert Preining", "about_as_text"=>"", "contact_email"=>nil, "facebook"=>nil, "twitter
    "=>nil, "default_venue_id"=>nil}, :user_url=>"http://voicerepublic.com/users/norbert-preining"}
    I, [2019-09-09T17:25:26.160285 #14795]  INFO -- : Completed 500 Internal Server Error in 138ms
    Followed by
    F, [2019-09-09T17:25:26.162781 #14795] FATAL -- : 
    Airbrake::Error (the 'default' notifier isn't configured):
      airbrake-ruby (1.0.4) lib/airbrake-ruby.rb:288:in `call_notifier'
      airbrake-ruby (1.0.4) lib/airbrake-ruby.rb:238:in `build_notice'
      airbrake (5.0.4) lib/airbrake/rack/notice_builder.rb:32:in `build_notice'
      airbrake (5.0.4) lib/airbrake/rack/middleware.rb:40:in `notify_airbrake'
      airbrake (5.0.4) lib/airbrake/rack/middleware.rb:24:in `rescue in call'
      airbrake (5.0.4) lib/airbrake/rack/middleware.rb:21:in `call'
      actionpack (4.2.0) lib/action_dispatch/middleware/debug_exceptions.rb:17:in `call'
      actionpack (4.2.0) lib/action_dispatch/middleware/show_exceptions.rb:30:in `call'
      railties (4.2.0) lib/rails/rack/logger.rb:38:in `call_app'
      railties (4.2.0) lib/rails/rack/logger.rb:20:in `block in call'
      activesupport (4.2.0) lib/active_support/tagged_logging.rb:68:in `block in tagged'
      activesupport (4.2.0) lib/active_support/tagged_logging.rb:26:in `tagged'
      activesupport (4.2.0) lib/active_support/tagged_logging.rb:68:in `tagged'
      railties (4.2.0) lib/rails/rack/logger.rb:20:in `call'
      actionpack (4.2.0) lib/action_dispatch/middleware/request_id.rb:21:in `call'
      rack (1.6.4) lib/rack/methodoverride.rb:22:in `call'
      rack (1.6.4) lib/rack/runtime.rb:18:in `call'
      dragonfly (1.0.12) lib/dragonfly/cookie_monster.rb:9:in `call'
      activesupport (4.2.0) lib/active_support/cache/strategy/local_cache_middleware.rb:28:in `call'
      rack-cache (1.6.1) lib/rack/cache/context.rb:140:in `forward'
      rack-cache (1.6.1) lib/rack/cache/context.rb:147:in `pass'
      rack-cache (1.6.1) lib/rack/cache/context.rb:159:in `invalidate'
      rack-cache (1.6.1) lib/rack/cache/context.rb:74:in `call!'
      rack-cache (1.6.1) lib/rack/cache/context.rb:51:in `call'
      rack (1.6.4) lib/rack/sendfile.rb:113:in `call'
      railties (4.2.0) lib/rails/engine.rb:518:in `call'
      railties (4.2.0) lib/rails/application.rb:164:in `call'
      rack (1.6.4) lib/rack/tempfile_reaper.rb:15:in `call'
      rack (1.6.4) lib/rack/lint.rb:49:in `_call'
      rack (1.6.4) lib/rack/lint.rb:37:in `call'
      rack (1.6.4) lib/rack/showexceptions.rb:24:in `call'
      rack (1.6.4) lib/rack/commonlogger.rb:33:in `call'
      rack (1.6.4) lib/rack/chunked.rb:54:in `call'
      rack (1.6.4) lib/rack/content_length.rb:15:in `call'
      unicorn (5.0.1) lib/unicorn/http_server.rb:562:in `process_client'
      unicorn (5.0.1) lib/unicorn/http_server.rb:658:in `worker_loop'
      unicorn (5.0.1) lib/unicorn/http_server.rb:508:in `spawn_missing_workers'
      unicorn (5.0.1) lib/unicorn/http_server.rb:519:in `maintain_worker_count'
      unicorn (5.0.1) lib/unicorn/http_server.rb:283:in `join'
      unicorn (5.0.1) bin/unicorn:126:in `<top (required)>'
      /home/app/app/shared/bundle/ruby/2.1.0/bin/unicorn:23:in `load'
      /home/app/app/shared/bundle/ruby/2.1.0/bin/unicorn:23:in `<main>'
    Mario Behling
    @norbusan Thank you
    François Cartegnie
    @norbusan if you're able to get an instance running from scratch that would be a step forward, but I'm confused about the cloud interactions (AWS keys)
    having only a production environment is also a blocker for upgrading the packages flagged with (insert synonym of critical here) security updates
    François Cartegnie
    The plan few weeks ago was to move instance to another hosting first, but without backup and understanding the interactions with AWS likeness of creating inconsistency is quite high
    The instance needs to have the really same hostname to ease the migration. I had trouble setting rabbitmq. I spent 1 day doing replication of nginx/postgre/home data and user accounts without firing up the rails stuff for the previous reasons
    Norbert Preining
    @fcartegnie sounds all like we actually need a sit-in at some point and concentrate on that together for some time.
    What are you plans for Japan and VLC? Can we arrange something around that? Is it too far into the future?
    François Cartegnie
    @norbusan we have venue, date. Missing hotels & events. IIJ secretary offered help to book hotels
    should be around november 9th, not even sure I'm going
    Norbert Preining
    Oh, ok. Well in case you go, let me know.
    François Cartegnie
    ok, so I fixed my awkward fix for faye
    I just point faye/ nginx proxy to hit raw http and set up faye as loopback raw http
    so I can restore 600 on ssl privkey, and fix the potential issue with exposed 9292
    Mario Behling
    @fcartegnie cool
    Do you think this will solve the login issue?
    François Cartegnie
    @mariobehling which test credentials
    admin working ?